ARGUMENTS

specifies the sequence number of the distribution point (0 for the first one, 1 for the second etc.)

void * ret

is the place where the distribution point will be copied to

size_t * ret_size

holds the size of ret.

unsigned int * reason_flags

Revocation reasons flags.

unsigned int * critical

will be non zero if the extension is marked as critical (may be null)

DESCRIPTION

This function will return the CRL distribution points (2.5.29.31),
contained in the given certificate.

reason_flags should be an ORed sequence of
GNUTLS_CRL_REASON_UNUSED, GNUTLS_CRL_REASON_KEY_COMPROMISE,
GNUTLS_CRL_REASON_CA_COMPROMISE,
GNUTLS_CRL_REASON_AFFILIATION_CHANGED,
GNUTLS_CRL_REASON_SUPERSEEDED,
GNUTLS_CRL_REASON_CESSATION_OF_OPERATION,
GNUTLS_CRL_REASON_CERTIFICATE_HOLD,
GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN,
GNUTLS_CRL_REASON_AA_COMPROMISE, or zero for all possible reasons.

This is specified in X509v3 Certificate Extensions. GNUTLS will
return the distribution point type, or a negative error code on
error.

RETURNS

GNUTLS_E_SHORT_MEMORY_BUFFER and updates &ret_size if
&ret_size is not enough to hold the distribution point, or the
type of the distribution point if everything was ok. The type is
one of the enumerated gnutls_x509_subject_alt_name_t. If the
certificate does not have an Alternative name with the specified
sequence number then GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE is
returned.